npm · registry.npmjs.org

@typespec/http-client-csharp

Credential file access: matched ".azure"

Why PkgRadar flagged 1.0.0-alpha.20260527.5

Severity	Signal	Evidence
high	Credential file access	matched ".azure" · package/dist/emitter/src/emit-generate.browser.js

Scanned versions

Version	Verdict	Score	Scanned (UTC)
`1.0.0-alpha.20260616.6`	Low risk	0	2026-06-16
`1.0.0-alpha.20260615.7`	Low risk	0	2026-06-15
`1.0.0-alpha.20260612.4`	Low risk	0	2026-06-15
`1.0.0-alpha.20260615.6`	Low risk	0	2026-06-15
`1.0.0-alpha.20260611.10`	Low risk	0	2026-06-12
`1.0.0-alpha.20260611.9`	Low risk	0	2026-06-12
`1.0.0-alpha.20260611.8`	Low risk	0	2026-06-11
`1.0.0-alpha.20260611.6`	Low risk	0	2026-06-11
`1.0.0-alpha.20260611.5`	Low risk	0	2026-06-11
`1.0.0-alpha.20260610.7`	Low risk	0	2026-06-11
`1.0.0-alpha.20260610.5`	Low risk	0	2026-06-10
`1.0.0-alpha.20260610.4`	Low risk	0	2026-06-10
`1.0.0-alpha.20260610.2`	Low risk	0	2026-06-10
`1.0.0-alpha.20260609.5`	Low risk	0	2026-06-09
`1.0.0-alpha.20260608.9`	Low risk	0	2026-06-09
`1.0.0-alpha.20260609.2`	Low risk	0	2026-06-09
`1.0.0-alpha.20260608.4`	Low risk	0	2026-06-08
`1.0.0-alpha.20260608.8`	Low risk	0	2026-06-08
`1.0.0-alpha.20260608.7`	Low risk	0	2026-06-08
`1.0.0-alpha.20260608.2`	Low risk	0	2026-06-08
`1.0.0-alpha.20260605.4`	Low risk	0	2026-06-05
`1.0.0-alpha.20260603.4`	Low risk	0	2026-06-03
`1.0.0-alpha.20260603.3`	Low risk	0	2026-06-03
`1.0.0-alpha.20260601.3`	Low risk	0	2026-06-01
`1.0.0-alpha.20260529.3`	Low risk	0	2026-05-29
`1.0.0-alpha.20260529.4`	Low risk	0	2026-05-29
`1.0.0-alpha.20260528.5`	Low risk	0	2026-05-29
`1.0.0-alpha.20260528.2`	Low risk	0	2026-05-28
`1.0.0-alpha.20260528.3`	Low risk	0	2026-05-28
`1.0.0-alpha.20260527.5`	Review	15	2026-05-28
`1.0.0-alpha.20260526.4`	Review	15	2026-05-27
`1.0.0-alpha.20260526.6`	Review	15	2026-05-27

Block this in CI

PkgRadar gates @typespec/http-client-csharp (and every other dependency) before it merges. One line in your pipeline:

pkgradar gate --ecosystem npm @typespec/[email protected]